On Wed, Sep 13, 2006 at 10:31:43PM +0200, Andre Oppermann wrote:
> Igor Sysoev wrote:
> >Well, suppose protocol similar to SSH or SMTP:
> >
> >1) the client calls connect(), it sends SYN;
> >2) the server receives SYN and sends SYN/ACK with cookie;
> >3) the client receives SYN/ACK and sends ACK;
>
On 9/13/06, David Christensen <[EMAIL PROTECTED]> wrote:
I can't access the information on this web site through Mozilla after
clicking "I Accept".
Hm. I've just found out that posting direct links to documents is too
Web 1.0 for ibm.com. Here is link to the parent page - works for me:
http://
On Thu, 14 Sep 2006, Ruslan Ermilov wrote:
On Wed, Sep 13, 2006 at 10:31:43PM +0200, Andre Oppermann wrote:
Igor Sysoev wrote:
Well, suppose protocol similar to SSH or SMTP:
1) the client calls connect(), it sends SYN;
2) the server receives SYN and sends SYN/ACK with cookie;
3) the client re
Hi Net@ people,
I posted this to hackers@ Mon, 11 Sep 2006 20:30:38 +0200 (CEST)
& got no response. I've fixed typos in subject & body.
Hopefuly net@ is more appropriate & can respond please :-)
---
(cc [EMAIL PROTECTED] who's maybe expert, from examples seen in share :-)
I'm not clear if this
Willem Jan Withagen (wjw) writes:
>
> Now I'm pretty shure that ipfw does not stretch indefinitely to contain
> perhaps something like 100.000 ip-numbers (would be a nice test. :) )
Actually, it should.
> So I'd
> like to see if there is something to do with divert and some matching on a
[ I guess I haven't been paying too much attention during ipwf class :(
And I got the suggestion to try FreeBSD-net@ instead of security. But
I'm not subscribed to this list, so please Cc: me.
]
Hi,
perhaps somebody could give some pointers.
I received a call from a customer this morning th
On Thu, Sep 14, 2006 at 03:29:14PM +0200, Willem Jan Withagen wrote:
> I received a call from a customer this morning that all of his websites were
> no longer on line. So After some resetting and more I turnout that there
> was a
> serious overload on his server. Over 500 clients connected. (norm
On Thu, Sep 14, 2006 at 03:46:12PM +0200, Phil Regnauld wrote:
> Willem Jan Withagen (wjw) writes:
> >
> > Now I'm pretty shure that ipfw does not stretch indefinitely to contain
> > perhaps something like 100.000 ip-numbers (would be a nice test. :) )
>
> Actually, it should.
I have over
Gary Palmer wrote:
> Willem Jan Withagen wrote:
> > I received a call from a customer this morning that all of his websites
> > were
> > no longer on line. So After some resetting and more I turnout that there
> > was a
> > serious overload on his server. Over 500 clients connected. (norm i
Gary Palmer wrote:
On Thu, Sep 14, 2006 at 03:29:14PM +0200, Willem Jan Withagen wrote:
I received a call from a customer this morning that all of his websites were
no longer on line. So After some resetting and more I turnout that there
was a
serious overload on his server. Over 500 clients c
Barney Wolff wrote:
On Thu, Sep 14, 2006 at 03:46:12PM +0200, Phil Regnauld wrote:
Willem Jan Withagen (wjw) writes:
Now I'm pretty shure that ipfw does not stretch indefinitely to contain
perhaps something like 100.000 ip-numbers (would be a nice test. :) )
Actually, it should.
I ha
Ruslan Ermilov wrote:
On Wed, Sep 13, 2006 at 10:31:43PM +0200, Andre Oppermann wrote:
Igor Sysoev wrote:
Well, suppose protocol similar to SSH or SMTP:
1) the client calls connect(), it sends SYN;
2) the server receives SYN and sends SYN/ACK with cookie;
3) the client receives SYN/ACK and sen
Igor Sysoev wrote:
On Thu, 14 Sep 2006, Ruslan Ermilov wrote:
On Wed, Sep 13, 2006 at 10:31:43PM +0200, Andre Oppermann wrote:
Igor Sysoev wrote:
Well, suppose protocol similar to SSH or SMTP:
1) the client calls connect(), it sends SYN;
2) the server receives SYN and sends SYN/ACK with cook
Oliver Fromme wrote:
Gary Palmer wrote:
> Willem Jan Withagen wrote:
> > I received a call from a customer this morning that all of his websites
were
> > no longer on line. So After some resetting and more I turnout that there
> > was a
> > serious overload on his server. Over 500 clients
On Thu, Sep 14, 2006 at 05:14:55PM +0200, Willem Jan Withagen wrote:
> I had several suggestions this direction. And it does help a little.
> The math is however against me.
>
> I had over 50 request/sec for this file. Now if the virus uses anything
> which leaves the connection open for regular
[EMAIL PROTECTED] wrote this message on Thu, Sep 14, 2006 at 12:16 +0530:
> Is there is any other solution to the above problem?
>
>
>
> Actually I am looking for some thing similar to Module loadable
> parameters in the Linux Device Driver.
look at kenv... It lets you set arbitrary values and
> >Are you able to boot a 7.x kernel on this box? An as yet un-MFC'd
> >optimization to the UDP send path is present in the 7.x kernel, suggested
> >by ISC, which significantly improves threaded BIND9 performance. I've not
> >benchmarked unthreaded BIND9 with the change. If you want to test
Willem Jan Withagen wrote:
[ I guess I haven't been paying too much attention during ipwf class :(
And I got the suggestion to try FreeBSD-net@ instead of security. But
I'm not subscribed to this list, so please Cc: me.
]
Hi,
perhaps somebody could give some pointers.
I received a call fr
Willem Jan Withagen wrote:
Barney Wolff wrote:
On Thu, Sep 14, 2006 at 03:46:12PM +0200, Phil Regnauld wrote:
Willem Jan Withagen (wjw) writes:
Now I'm pretty shure that ipfw does not stretch indefinitely to
contain
perhaps something like 100.000 ip-numbers (would be a nice test. :) )
On 9/14/06, Larry Baird <[EMAIL PROTECTED]> wrote:
Please find attached two patches for adding FAST_IPSEC NAT-T support to
FreeBSD 6.x. The patch "freebsd6-fastipsec-natt.diff" is dependent
upon Yvan's IPSEC NAT-T patch "freebsd6-natt.diff" which can be found at
http://ipsec-tools.cvs.sourceforg
Marcelo Gardini do Amaral wrote:
With the 7.x kernel and no changes in src/sys/netinet/udp_usrreq.c I
tried different timecounters and I couldn't see any performance
difference.
You have tested with a GENERIC kernel? You should remove all
debugging kernel options before testing performance.
-
Hi Mark,
As I mentioned in the previous mail, the main issue is to read a
Configuration parameter file from driver code. I am already using Sysctl
variables as mentioned below,
Currently I have written a small kernel module that will create a sysctl
variable and update with a default value.
On Fri, Sep 15, 2006 at 06:02:38AM +0600, Kamanashis Roy Shuva wrote:
> Hi,
> You have done a great jop. And I find this useful today. Problem is things
> are not working fine.
> I have compiled freebsd with the patch
> MD5 (freebsd6-natt.diff) = 81d535363981b5e84be77cbf26918ccc
> for natt suppor
23 matches
Mail list logo
